#ExploitObserverAlert
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2022-37969
DESCRIPTION: Exploit Observer has 13 entries related to CVE-2022-37969. Windows Common Log File System Driver Elevation of Privilege Vulnerability
FIRST-EPSS: 0.001480000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2017-5070
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2017-5070. Type confusion in V8 in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac, and 59.0.3071.92 for Android, allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page.
FIRST-EPSS: 0.226460000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
CVE-2020-11261
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2020-11261. Memory corruption due to improper check to return error when user application requests memory allocation of a huge size in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice
#ExploitObserverAlert
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2020-25506
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2020-25506. D-Link DNS-320 FW v2.06B01 Revision Ax is affected by command injection in the system_mgr.cgi component, which can lead to remote arbitrary code execution.
FIRST-EPSS: 0.974240000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2018-8414
DESCRIPTION: Exploit Observer has 14 entries related to CVE-2018-8414. A remote code execution vulnerability exists when the Windows Shell does not properly validate file paths, aka "Windows Shell Remote Code Execution Vulnerability." This affects Windows 10 Servers, Windows 10.
FIRST-EPSS: 0.966380000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
CVE-2021-27059
DESCRIPTION: Exploit Observer has 1 entries related to CVE-2021-27059. Microsoft Office Remote Code Execution Vulnerability This CVE ID is unique from CVE-2021-24108, CVE-2021-27057.
FIRST-EPSS: 0.021490000
NVD-IS: 5.9
NVD-ES: 0.9
#ExploitObserverAlert
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
CVE-2020-13927
DESCRIPTION: Exploit Observer has 11 entries related to CVE-2020-13927. The previous default setting for Airflow's Experimental API was to allow all API requests without authentication, but this poses security risks to users who miss this fact. From Airflow 1.10.11 the default has been changed to deny all requests by default and is documented at https://airflow.apache.org/docs/1.10.11/security.html
#ExploitObserverAlert
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2021-27860
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2021-27860. A vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p92 and 10.2.2r44p1 allows a remote, unauthenticated attacker to upload a file to any location on the filesystem. The FatPipe advisory identifier for this vulnerability is FPSA006.
FIRST-EPSS: 0.049340000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8
CVE-2020-11978
DESCRIPTION: Exploit Observer has 27 entries related to CVE-2020-11978. An issue was found in Apache Airflow versions 1.10.10 and below. A remote code/command injection vulnerability was discovered in one of the example DAGs shipped with Airflow which would allow any authenticated user to run arbitrary commands as the user running airflow worker/scheduler (depending on the executor in use). If you already have examples disabled by setting load_examples=False in the config then you are not vulnerable.
FIRST-EPSS: 0.971560000
NVD-IS: 5.9
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2022-26143
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-26143. The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service (performance degradation and excessive outbound traffic). This was exploited in the wild in February and March 2022 for the TP240PhoneHome DDoS attack.
FIRST-EPSS: 0.059170000
NVD-IS: 5.9
NVD-ES: 3.9
CVE-2022-26143
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2022-26143. The TP-240 (aka tp240dvr) component in Mitel MiCollab before 9.4 SP1 FP1 and MiVoice Business Express through 8.1 allows remote attackers to obtain sensitive information and cause a denial of service (performance degradation and excessive outbound traffic). This was exploited in the wild in February and March 2022 for the TP240PhoneHome DDoS attack.
FIRST-EPSS: 0.059170000
NVD-IS: 5.9
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2012-0151
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2012-0151. The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute arbitrary code via a modified file with additional content, aka "WinVerifyTrust Signature Validation Vulnerability."
FIRST-EPSS: 0.951940000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2012-0151
DESCRIPTION: Exploit Observer has 6 entries related to CVE-2012-0151. The Authenticode Signature Verification function in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, Windows 7 Gold and SP1, and Windows 8 Consumer Preview does not properly validate the digest of a signed portable executable (PE) file, which allows user-assisted remote attackers to execute arbitrary code via a modified file with additional content, aka "WinVerifyTrust Signature Validation Vulnerability."
FIRST-EPSS: 0.951940000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2016-4656
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2016-4656. The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
FIRST-EPSS: 0.004560000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-4656
DESCRIPTION: Exploit Observer has 30 entries related to CVE-2016-4656. The kernel in Apple iOS before 9.3.5 allows attackers to execute arbitrary code in a privileged context or cause a denial of service (memory corruption) via a crafted app.
FIRST-EPSS: 0.004560000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2020-35730
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2020-35730. An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkref_addindex in rcube_string_replacer.php.
FIRST-EPSS: 0.004620000
NVD-IS: 2.7
NVD-ES: 2.8
CVE-2020-35730
DESCRIPTION: Exploit Observer has 10 entries related to CVE-2020-35730. An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkref_addindex in rcube_string_replacer.php.
FIRST-EPSS: 0.004620000
NVD-IS: 2.7
NVD-ES: 2.8
#ExploitObserverAlert
CVE-2016-0167
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-0167. The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0143 and CVE-2016-0165.
FIRST-EPSS: 0.000620000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2016-0167
DESCRIPTION: Exploit Observer has 8 entries related to CVE-2016-0167. The kernel-mode driver in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows local users to gain privileges via a crafted application, aka "Win32k Elevation of Privilege Vulnerability," a different vulnerability than CVE-2016-0143 and CVE-2016-0165.
FIRST-EPSS: 0.000620000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2018-0179
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2018-0179. Multiple vulnerabilities in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition. These vulnerabilities affect Cisco devices that are running Cisco IOS Software Release 15.4(2)T, 15.4(3)M, or 15.4(2)CG and later. Cisco Bug IDs: CSCuy32360, CSCuz60599.
FIRST-EPSS: 0.001610000
NVD-IS: 3.6
NVD-ES: 2.2
CVE-2018-0179
DESCRIPTION: Exploit Observer has 2 entries related to CVE-2018-0179. Multiple vulnerabilities in the Login Enhancements (Login Block) feature of Cisco IOS Software could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition. These vulnerabilities affect Cisco devices that are running Cisco IOS Software Release 15.4(2)T, 15.4(3)M, or 15.4(2)CG and later. Cisco Bug IDs: CSCuy32360, CSCuz60599.
FIRST-EPSS: 0.001610000
NVD-IS: 3.6
NVD-ES: 2.2
#ExploitObserverAlert
CVE-2020-11738
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2020-11738. The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
FIRST-EPSS: 0.974300000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2020-11738
DESCRIPTION: Exploit Observer has 29 entries related to CVE-2020-11738. The Snap Creek Duplicator plugin before 1.3.28 for WordPress (and Duplicator Pro before 3.8.7.1) allows Directory Traversal via ../ in the file parameter to duplicator_download or duplicator_init.
FIRST-EPSS: 0.974300000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2019-7609
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-7609. Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
FIRST-EPSS: 0.963650000
NVD-IS: 6.0
NVD-ES: 3.9
CVE-2019-7609
DESCRIPTION: Exploit Observer has 70 entries related to CVE-2019-7609. Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker executing arbitrary commands with permissions of the Kibana process on the host system.
FIRST-EPSS: 0.963650000
NVD-IS: 6.0
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2021-21551
DESCRIPTION: Exploit Observer has 56 entries related to CVE-2021-21551. Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
FIRST-EPSS: 0.001540000
NVD-IS: 5.9
NVD-ES: 1.8
CVE-2021-21551
DESCRIPTION: Exploit Observer has 56 entries related to CVE-2021-21551. Dell dbutil_2_3.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.
FIRST-EPSS: 0.001540000
NVD-IS: 5.9
NVD-ES: 1.8
#ExploitObserverAlert
CVE-2016-6415
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2016-6415. The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.
FIRST-EPSS: 0.973180000
NVD-IS: 3.6
NVD-ES: 3.9
CVE-2016-6415
DESCRIPTION: Exploit Observer has 18 entries related to CVE-2016-6415. The server IKEv1 implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.6, IOS XE through 3.18S, IOS XR 4.3.x and 5.0.x through 5.2.x, and PIX before 7.0 allows remote attackers to obtain sensitive information from device memory via a Security Association (SA) negotiation request, aka Bug IDs CSCvb29204 and CSCvb36055 or BENIGNCERTAIN.
FIRST-EPSS: 0.973180000
NVD-IS: 3.6
NVD-ES: 3.9
#ExploitObserverAlert
CVE-2013-1331
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2013-1331. Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka "Office Buffer Overflow Vulnerability."
FIRST-EPSS: 0.968470000
NVD-IS: 10.0
NVD-ES: 8.6
CVE-2013-1331
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2013-1331. Buffer overflow in Microsoft Office 2003 SP3 and Office 2011 for Mac allows remote attackers to execute arbitrary code via crafted PNG data in an Office document, leading to improper memory allocation, aka "Office Buffer Overflow Vulnerability."
FIRST-EPSS: 0.968470000
NVD-IS: 10.0
NVD-ES: 8.6
#ExploitObserverAlert
CVE-2022-2856
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-2856. Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page.
FIRST-EPSS: 0.003730000
NVD-IS: 3.6
NVD-ES: 2.8
CVE-2022-2856
DESCRIPTION: Exploit Observer has 4 entries related to CVE-2022-2856. Insufficient validation of untrusted input in Intents in Google Chrome on Android prior to 104.0.5112.101 allowed a remote attacker to arbitrarily browse to a malicious website via a crafted HTML page.
FIRST-EPSS: 0.003730000
NVD-IS: 3.6
NVD-ES: 2.8